FROZEN#SHADOW
· Published 21/12/2025 04:25 · Modified 21/12/2025 04:25
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 04:25
- Modified
- 21/12/2025 04:25
- Updated at
- 21/12/2025 04:25
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 18 attack patterns (mitre), 2 malware, 73 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Attack patterns (MITRE) (18)
-
T1057 usesProcess Discovery MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1070.004 usesFile Deletion MITRE
-
T1033 usesSystem Owner/User Discovery MITRE
-
T1518.001 usesSecurity Software Discovery MITRE
-
T1219 usesRemote Access Tools MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1102 usesWeb Service MITRE
-
T1059.001 usesPowerShell MITRE
-
T1069.002 usesDomain Groups MITRE
-
T1071.002 usesFile Transfer Protocols MITRE
-
T1059.007 usesJavaScript MITRE
Malware (2)
-
SSLoad usesFamily
-
AlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Indicators (73)
-
fc21a125287c3539e11408587bcaa6f3b54784d9d458facbc54994f05d7ef1b0indicates -
https://skinnyjeanso.com/live/indicates -
winarkamaps.comindicates -
7dbebb7c76511fc063b5ace0a9359b655f66a55a494200b8fd11905c78b5fb90indicates -
18d60c9c807da021bc2c31e3ba7ec2737865a8c96060134caa3cf033e43e26feindicates -
4d9274cfe7a2bd9a125352271d1634708e1f9b1d70b056d1c1950cb98b8f91ffindicates -
6d7a94b7551f15732e193a07357375b98b463f0dce6b1fed871a42fcbdde9f48indicates -
3584ca9c1e7e0a38e47f59bb16c21203a60833d0f826294d535a98e7ca76d9c1indicates -
dcae57ec4b69236146f744c143c42cc8bdac9da6e991904e6dbf67ec1179286aindicates -
kasnackamarch.infoindicates -
791c28d4201e8b9ea5162fbee3908feb34793b1c51f5aaedc43916e86068248dindicates -
7206eafc475f246e7c9c258afdaaa64b5193c1c7427d927be417e53dec890078indicates